When we send data from Producer to the consumer we need one protocol. below are transportation methods supported by EDI
SMTP-AS1
FTP & FTPS --AS3
HTTP & HTTPS -- AS2
Web services
SFTP,
SMTP,
MQ
What is EDI-INT?
A set of standards that define a common method for sending EDI messages over Internet.
EDI-INT provides guidelines for encryption, decryption and confirmations of through Message Disposition Notifications (MDN).
Internet EDI consists of three established standards (AS1, AS2, AS3) to securely transport EDI documents over the Internet.
What are AS1, AS2, AS3.
Applicability Statement 1(AS1), Applicability Statement 2(AS2) are industry standards for Internet-based data exchange.
These standards simplify communication by reducing the number of technologies an organization must support and manage.
If every large organization using a different data transport standard, it would be cost-prohibitive for their smaller business partners to exchange data with them electronically.
AS1 and AS2 allow organizations to implement one solution for data exchange with all business partners using an AS1 or AS2 solution.
The AS1 standard is a way to securely transport EDI documents over the Internet via SMTP (email).
The AS2 standard is a way to securely transport EDI and XML documents over the Internet via HTTP.
The AS3 standard is a way to securely transport EDI documents and XML over the Internet via FTP.
What is the basic checklist we need from a partner to configure AS2?
1. AS2 Partner Identifier
2.AS2 Certificate
3 End Point --http:/dashboard:port+33/as2
4. What type of MDN to want to receive from:
There are 3 types: Synchronous (they want the MDN's in the same connection that the data was sent in), Asynchronous (They want the MDN's to come back in a different connection) or No MDN's.
**********The same things need from our side to the customer.
List of AS2 BP for outbound file transfer:
AS2: protocol
AS2 is used only specifically for EDI and also used XML etc..
it's using HTTP/HTTPS -transport protocol to transform the data.
There are 5 steps for AS2 setup.
1.Create Self Certificate for an individual
2.create Trusted certificate
3.create AS2 PROFILE for Organization and Partner
4. Create Relation Ship for Organization and Partner.
Explanation:
step1: Go to Trading Partner > Digital Certificates >System>Self-signed Certificate both of them and check-out Base64 certificate into our local system.
step2: Now create a Trusted CERTIFICATE for both organizations. In this section, we exchange our Self-signed Certificate each of them.
step3: Now create AS2 Organization Setup. and Partner
In Partner, we use endpoint as http://172.17.0.133:8113/as2 or http://172......../as2
step4: now we create a relationship between partner and organization.
Testing:
-------
When we test AS2 protocol BP it calls TestNowAS2 BP.
if we set or Enable MDN in AS2 Partner setup its call MDNAS2synus or MDNAS2Asynch and
if we do not enable AS2 then it calls NoMDSAs2 BP.
==========================
procedure for creating SFTP in sterling integegrator using SSH protocol
===================================
SSH(Secure Soct)--SSH Protocol is based on Public key/Private key encreption process.
step1: Trading Partner Create SSH certificate it contains the private key
In this certificate, we have to give the Output directory.
We can generate SSH certificate using win FTP server.
know host key: Know host key is working as a private key
user identity key: It's like a public key.
==========
SI certificates:
-------------------
There are different certificates stores in SI where certificates need to be imported depending on the usage,
this is done via the UI under "Trading Partner => Digital certificates"
The stores available in SI are:
system certificates:
This store is used to keep your own system certificates, the ones that contain a private key.
You need to import to this store the certificates used in the organization profile for signing and encryption as well as
your own SSL certificate, if SSL is used.
validation:
1.validate:--Verifies dates for the validity period of the certificate to check if they are still in effect.
If the certificate has expired, the certificate is not used.
Auth Chain:
Constructs a chain of trust for certificates that are not self-signed. If a chain of trust cannot be constructed using valid certificates, the certificate is not used.
If the certificate is self-signed, this option verifies only the certificate signature;
this means that all the intermediate and root certificates listed in the certificate chain need to be imported into SI CA store.
Base64:
DER:
PGP:
What is EDI-INT?
A set of standards that define a common method for sending EDI messages over Internet.
EDI-INT provides guidelines for encryption, decryption and confirmations of through Message Disposition Notifications (MDN).
Internet EDI consists of three established standards (AS1, AS2, AS3) to securely transport EDI documents over the Internet.
What are AS1, AS2, AS3.
Applicability Statement 1(AS1), Applicability Statement 2(AS2) are industry standards for Internet-based data exchange.
These standards simplify communication by reducing the number of technologies an organization must support and manage.
If every large organization using a different data transport standard, it would be cost-prohibitive for their smaller business partners to exchange data with them electronically.
AS1 and AS2 allow organizations to implement one solution for data exchange with all business partners using an AS1 or AS2 solution.
The AS1 standard is a way to securely transport EDI documents over the Internet via SMTP (email).
The AS2 standard is a way to securely transport EDI and XML documents over the Internet via HTTP.
The AS3 standard is a way to securely transport EDI documents and XML over the Internet via FTP.
What is the basic checklist we need from a partner to configure AS2?
1. AS2 Partner Identifier
2.AS2 Certificate
3 End Point --http:/dashboard:port+33/as2
4. What type of MDN to want to receive from:
There are 3 types: Synchronous (they want the MDN's in the same connection that the data was sent in), Asynchronous (They want the MDN's to come back in a different connection) or No MDN's.
**********The same things need from our side to the customer.
List of AS2 BP for outbound file transfer:
The set of AS2 Bps used for outbound transfers will change depending on your implementation and on the AS2 partner configuration, see below complete list of all AS2 BPs used for outbound transfers.
- AS2O
utbo un d - AS2
Send ASyn cMD N - AS2
Send AndP roce ssAs yncM D N - AS2
Send AndP roce ssNo MD N - AS2
Send AndP roce ssSy ncMD N - AS2
Send NoMD N - AS2
Send Sync MD N - Dir
ectA S2Se ndAS yncM D N - Dir
ectA S2Se ndAn dPro cess Asyn cMD N - Dir
ectA S2Se ndAn dPro cess NoMD N - Dir
ectA S2Se ndAn dPro cess Sync MD N - Dir
ectA S2Se ndNo MD N - Dir
ectA S2Se ndSy ncMD N - Mai
lbox AS2A d d - Mai
lbox AS2S endA ndPr oces sAsy ncMD N - Mai
lbox AS2S endA ndPr oces sNoM D N - Mai
lbox AS2S endA ndPr oces sSyn cMD N - Mai
lbox AS2S endA sync MD N - Mai
lbox AS2S endA sync MDNS pawn e r - Mai
lbox AS2S endN oMD N - Mai
lbox AS2S endN oMDN Spaw ne r - Mai
lbox AS2S endS yncM D N - Mai
lbox AS2S endS yncM DNSp awne r - HTT
PCli entS en d
- List of AS2 BPs for inbound file transferEDIINTParse, httpsyncsend and httpasyncsend should be given priority since they are the ones who process the inbound data and return the HTTP responses back to partner as well as the MDNs.
- EDII
NTPa rs e - AS2
Extr ac t - AS2
Inbo un d - Mai
lbox AS2A d d - HTT
PAsy ncSe n d - HTT
PSyn cSen d
AS2: protocol
AS2 is used only specifically for EDI and also used XML etc..
it's using HTTP/HTTPS -transport protocol to transform the data.
There are 5 steps for AS2 setup.
1.Create Self Certificate for an individual
2.create Trusted certificate
3.create AS2 PROFILE for Organization and Partner
4. Create Relation Ship for Organization and Partner.
Explanation:
step1: Go to Trading Partner > Digital Certificates >System>Self-signed Certificate both of them and check-out Base64 certificate into our local system.
step2: Now create a Trusted CERTIFICATE for both organizations. In this section, we exchange our Self-signed Certificate each of them.
step3: Now create AS2 Organization Setup. and Partner
In Partner, we use endpoint as http://172.17.0.133:8113/as2 or http://172......../as2
step4: now we create a relationship between partner and organization.
Testing:
-------
When we test AS2 protocol BP it calls TestNowAS2 BP.
if we set or Enable MDN in AS2 Partner setup its call MDNAS2synus or MDNAS2Asynch and
if we do not enable AS2 then it calls NoMDSAs2 BP.
QUESTIONS:
What is MDN: Message Disposition Notification
it contains 5 types of operations
1.status information
2.signed
3.unsigned
4.Synchronous MDN
5.Asynchronous MDN
Defalute Database for AS2: AS2_TRADEPART_INFO
Default AS2 URL (ApplicationIP_ADDRESS:port/b2bhttp/inbound/as2)
#what are the Basic requirements for AS2 setup from Trading Partner?
Ans: 1.AS2identifier
2.AS2Certificats
3.AS2Endpoint
4. What type of MDN 's do they want to receiver
and: ASYN/syn
-----------------
What is MDN: Message Disposition Notification
it contains 5 types of operations
1.status information
2.signed
3.unsigned
4.Synchronous MDN
5.Asynchronous MDN
Defalute Database for AS2: AS2_TRADEPART_INFO
Default AS2 URL (ApplicationIP_ADDRESS:port/b2bhttp/inbound/as2)
#what are the Basic requirements for AS2 setup from Trading Partner?
Ans: 1.AS2identifier
2.AS2Certificats
3.AS2Endpoint
4. What type of MDN 's do they want to receiver
and: ASYN/syn
-----------------
==========================
procedure for creating SFTP in sterling integegrator using SSH protocol
===================================
SSH(Secure Soct)--SSH Protocol is based on Public key/Private key encreption process.
step1: Trading Partner Create SSH certificate it contains the private key
In this certificate, we have to give the Output directory.
We can generate SSH certificate using win FTP server.
know host key: Know host key is working as a private key
user identity key: It's like a public key.
==========
SI certificates:
-------------------
There are different certificates stores in SI where certificates need to be imported depending on the usage,
this is done via the UI under "Trading Partner => Digital certificates"
The stores available in SI are:
system certificates:
This store is used to keep your own system certificates, the ones that contain a private key.
You need to import to this store the certificates used in the organization profile for signing and encryption as well as
your own SSL certificate, if SSL is used.
validation:
1.validate:--Verifies dates for the validity period of the certificate to check if they are still in effect.
If the certificate has expired, the certificate is not used.
Auth Chain:
Constructs a chain of trust for certificates that are not self-signed. If a chain of trust cannot be constructed using valid certificates, the certificate is not used.
If the certificate is self-signed, this option verifies only the certificate signature;
this means that all the intermediate and root certificates listed in the certificate chain need to be imported into SI CA store.
Base64:
DER:
PGP:
1. GPG ....
a. How To add a vendor public key
1. Copy key file from incident to your desktop and move to Gpg application system (linux) using filezilla
2. Navigate to GpG home directory with root permission (su --userid)
3. List of key using gpg --list-keys to check avaliable keys in current system
4. Import the customer public key using gpg --import command
5. Verify the key was successfully imported in to sysem using gpg --list-keys
6. Trust the key : using gpg --no-batch --edit-key <public key user id/email id>
command>trust select 5 to ultimate trust the user then quit from edit mode .
7. Re-enter edit key to verify trust is successfully verified or not .
8. Quit from edit mode
Comments
Post a Comment